Server Error 500 When Cloning Over HTTPS with External nginx/passenger
I'm using the latest GitLab version running with my own nginx and passenger installation. I have the nginx components of GitLab disabled.
I can browse the web interface completely fine (HTTPS). I was able to create a bunch of public projects and load data via the web interface. When I clone via SSH it works fine. I can also commit.
When I clone via HTTPS it does NOT work.
The server responds: HTTP/1.1 500 Internal Server Error```
The only content that appears in any logs in ```/var/log/gitlab/``` are my nginx logs which also show the 500 error.
According to "```gitlab-rake gitlab:check```" there are no issues.
Any idea of where I can start troubleshooting? Maybe I can enable additional logging?
Below are the uncommented lines on ```/etc/gitlab/gitlab.rb```:
external_url 'https://git.redacted.com' gitlab_rails['internal_api_url'] = 'https://git.redacted.com' git_data_dir "/content/git-data" unicorn['enable'] = false web_server['external_users'] = ['nginx'] nginx['enable'] = false ci_nginx['enable'] = false
Below is my nginx config:
upstream gitlab-git-http-server { server unix://var/opt/gitlab/gitlab-git-http-server/socket fail_timeout=0; } server { listen 443; server_name git.redacted.com; server_tokens off; root /opt/gitlab/embedded/service/gitlab-rails/public;
client_max_body_size 250m;
access_log /var/log/gitlab/nginx/gitlab_access.log;
error_log /var/log/gitlab/nginx/gitlab_error.log;
# Ensure Passenger uses the bundled Ruby version
passenger_ruby /opt/gitlab/embedded/bin/ruby;
# Correct the $PATH variable to included packaged executables
passenger_env_var PATH "/opt/gitlab/bin:/opt/gitlab/embedded/bin:/usr/local/bin:/usr/bin:/bin";
# Make sure Passenger runs as the correct user and group to
# prevent permission issues
passenger_user git;
passenger_group git;
# Enable Passenger & keep at least one instance running at all times
passenger_enabled on;
passenger_min_instances 1;
location = / {
return 301 https://git.redacted.com/explore/projects?sort=updated_desc;
}
location ~ [-\/\w\.]+\.git\/ {
## If you use HTTPS make sure you disable gzip compression
## to be safe against BREACH attack.
gzip off;
## https://github.com/gitlabhq/gitlabhq/issues/694
## Some requests take more than 30 seconds.
proxy_read_timeout 300;
proxy_connect_timeout 300;
proxy_redirect off;
# Do not buffer Git HTTP responses
proxy_buffering off;
# The following settings only work with NGINX 1.7.11 or newer
#
# Pass chunked request bodies to gitlab-git-http-server as-is
# proxy_request_buffering off;
# proxy_http_version 1.1;
proxy_set_header Host $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-Ssl on;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://gitlab-git-http-server;
}
error_page 502 /502.html;}```
Activity
In other news, I'm a bonehead and had the seperate http server for just git communication disabled...
unicorn['enable'] = falseSetting the above option to
truein/etc/gitlab/gitlab.rband doing the following fixed it:> gitlab-ctl reconfigure > gitlab-ctl stop > gitlab-ctl start > systemctl restart nginxResults...
> git clone https://git.redacted.com/projgroup/projname.git Cloning into 'projname'... remote: Counting objects: 165, done. remote: Compressing objects: 100% (76/76), done. remote: Total 165 (delta 85), reused 165 (delta 85) Receiving objects: 100% (165/165), 39.33 KiB | 0 bytes/s, done. Resolving deltas: 100% (85/85), done. Checking connectivity... done.I have the same problem here. Isn't this a bug? http://doc.gitlab.com/omnibus/settings/nginx.html#using-an-existing-passengernginx-installation says that unicorn should be disabled.
mentioned in merge request !14785
